Module 1 Question Number: J1-7, Network Construction and Configuration of Core Information Technology Co., Ltd.
(1)Task description
Core Information Technology Co., Ltd. is an emerging technology company engaged in network integration. Due to the recent rapid development of Internet technology, Core Information Technology Co., Ltd. has also developed rapidly. The number of employees in the company has increased sharply, and the original network can no longer meet the growing business. needs. The company’s senior management asked Xiaohua, the network administrator of the network department, to re-plan and manage the company’s network in a unified manner to improve network performance and enhance security.
After careful investigation and analysis, Xiaohua decided to expand the existing network of Kerui Company and re-plan the topology. The topology adopts a relatively common three-layer architecture (access layer, aggregation layer, core layer). In order to ensure that the network can operate safely, normally, and stably, according to different services, there are production services, office services, and network management services. Each service is placed in a separate broadcast domain to achieve service separation. The topology structure diagram of Kerui Company is shown in the figure below:
The company network IP addresses are assigned as follows:
Task 1: Network equipment selection and interconnection (4 points)
① Connect the network cable to each network device interface as needed. Note: The last interface of LSW1 is connected to GE0/0/1 of R1, and the GE0/0/1 of LSW1 is connected to the GE0/0/1 interface of LSW2. LSW1 GE0/0/2 of LSW3 is connected to the GE0/0/1 interface of LSW3, and GE0/0/3 of LSW1 is connected to the GE0/0/1 interface of LSW4. (4 points)
Task 2: Basic switch configuration (14 points)
① Use eNSP to perform basic configuration on R1, LSW1, LSW2, LSW3, and LSW4. The host name of R1 is configured as R1, the host name of LSW1 is configured as LSW1, the host name of LSW2 is configured as LSW2, the host name of LSW3 is configured as LSW3, and the host name of LSW4 is configured LSW4. (8 points)
R1
sysname R1
LSW1
sysname LSW1
LSW2
sysname LSW2
LSW3
sysname LSW3
LSW4
sysname LSW4
② Configure the login password of the CONSOLE port on LSW1 to be admin. (6 points)
user-interface console 0 authentication-mode password set authentication password cipher admin
Task 3: Divide vlan (30 points)
① According to the requirements, divide vlan in LSW1, create vlan10, vlan20, vlan30, vlan10 is described as shengchanyewu, vlan20 is described as bangongyewu, and vlan30 is described as wangguanyewu. (6 points)
vlan batch 10 20 30 vlan 10 description shengchanyewu vlan 20 description bangongyewu vlan 30 description wangguanyewu
② Divide vlan in LSW2 and create vlan10. Divide vlan in LSW3 and create vlan20. Divide vlan in LSW4 and create vlan30. Divide E0/0/11-15 to vlan10 on LSW2. Assign E0/0/11-15 to vlan20 on LSW3 (5 points). Divide E0/0/11-15 to vlan30 on LSW4 (18 points)
LSW2
vlan 10</code><code>port-group vlan10 group-member e 0/0/11 to e0/0/15 port link-type access port default vlan 10
LSW3
vlan 20</code><code>port-group vlan20 group-member e 0/0/11 to e0/0/15 port link-type access port default vlan 20
LSW4
vlan 30</code><code>port-group vlan30 group-member e 0/0/11 to e0/0/15 port link-type access port default vlan 30
③Set the interface connecting the switch to the switch as Trunk. (6 points)
LSW1
port-group trunk group-member g 0/0/1 to g0/0/3 port link-type trunk port trunk allow-pass vlan 10 20 30
Execute on LSW2, LSW3, LSW4:
interface GigabitEthernet 0/0/1 port link-type <em>trunk</em> port trunk allow-pass vlan 10 20 30
Task 4: Configure DHCP Relay (32 points)
① Assign IP to each VLANIF interface on LSW1. The corresponding VLANIF is the gateway address of each vlan. (3 points)
interface Vlanif 1 IP address 192.168.1.2 255.255.255.252 interface Vlanif 10 IP address 192.168.10.254 255.255.255.0 interface Vlanif 20 IP address 192.168.11.254 255.255.255.0 interface Vlanif 30 ip address 192.168.12.254 255.255.255.0
②Enable relay on LSW1 (2 points)
dhcp enable interface vlanif 10 dhcp select relay dhcp relay server-ip 192.168.1.1 interface vlanif 20 dhcp select relay dhcp relay server-ip 192.168.1.1 interface vlanif 30 dhcp select relay dhcp relay server-ip 192.168.1.1
③ Configure R1 as a DHCP server, create an address pool for vlan 10 with the name shengchanyewu, the DNS server address is 202.103.96.68, create an address pool with the name bangongyewu for vlan 20, the DNS server address is 202.103.96.68, and create an address pool for vlan 30 The name is wangguanyewu, and the DNS server address is 202.103.96.68. (19 points)
interface GigabitEthernet0/0/1 IP address 192.168.1.1 255.255.255.252 ip route-static 0.0.0.0 0.0.0.0 192.168.1.2
dhcp enable ip pool shengchanyewu gateway-list 192.168.10.254 network 192.168.10.0 mask 255.255.255.0 dns-list 202.103.96.68 ip pool bangongyewu gateway-list 192.168.11.254 network 192.168.11.0 mask 255.255.255.0 dns-list 202.103.96.68 ip pool wangguanyewu gateway-list 192.168.12.254 network 192.168.12.0 mask 255.255.255.0 dns-list 202.103.96.68
④The DHCP server is not allowed to assign IP addresses 192.168.10.1-192.168.10.20, 192.168.11.1-192.168.11.30; (2 points)
ip pool shengchanyewu excluded-ip-address 192.168.10.1 192.168.10.20 ip pool bangongyewu excluded-ip-address 192.168.11.1 192.168.11.30 interface GigabitEthernet 0/0/1 dhcp select global
⑤ Full network connectivity test, PC can ping all hosts after automatically obtaining IP. (6 points)
Set all PCs to obtain DHCP automatically
PC>ipconfig /renew IP Configuration Can't find DHCP server! Link local IPv6 address.............: fe80::5689:98ff:fe12:36bf IPv6 address........................: ::/128 IPv6 gateway........................: :: IPv4 address........................: 192.168.10.253 Subnet mask........................: 255.255.255.0 Gateway........................: 192.168.10.254 Physical address............: 54-89-98-12-36-BF DNS server........................: 202.103.96.68
PC>ipconfig /renew IP Configuration Link local IPv6 address.............: fe80::5689:98ff:fe08:4d6d IPv6 address........................: ::/128 IPv6 gateway........................: :: IPv4 address........................: 192.168.11.253 Subnet mask........................: 255.255.255.0 Gateway........................: 192.168.11.254 Physical address............: 54-89-98-08-4D-6D DNS server........................: 202.103.96.68
PC>ipconfig /renew IP Configuration Link local IPv6 address.............: fe80::5689:98ff:fe66:645d IPv6 address........................: ::/128 IPv6 gateway........................: :: IPv4 address........................: 192.168.12.253 Subnet mask........................: 255.255.255.0 Gateway........................: 192.168.12.254 Physical address............: 54-89-98-66-64-5D DNS server........................: 202.103.96.68
PC>ping 192.168.11.253 Ping 192.168.11.253: 32 data bytes, Press Ctrl_C to break From 192.168.11.253: bytes=32 seq=1 ttl=127 time=62 ms From 192.168.11.253: bytes=32 seq=2 ttl=127 time=78 ms From 192.168.11.253: bytes=32 seq=3 ttl=127 time=78 ms PC>ping 192.168.12.253 Ping 192.168.12.253: 32 data bytes, Press Ctrl_C to break From 192.168.12.253: bytes=32 seq=1 ttl=127 time=78 ms From 192.168.12.253: bytes=32 seq=2 ttl=127 time=78 ms From 192.168.12.253: bytes=32 seq=3 ttl=127 time=109 ms
Configuration command:
AR1
system-view sysname AR1 interface GigabitEthernet 0/0/1 IP address 192.168.1.1 255.255.255.252 ip route-static 0.0.0.0 0.0.0.0 192.168.1.2 dhcp enable ip pool shengchanyewu gateway-list 192.168.10.254 network 192.168.10.0 mask 255.255.255.0 dns-list 202.103.96.68 ip pool bangongyewu gateway-list 192.168.11.254 network 192.168.11.0 mask 255.255.255.0 dns-list 202.103.96.68 ip pool wangguanyewu gateway-list 192.168.12.254 network 192.168.12.0 mask 255.255.255.0 dns-list 202.103.96.68 ip pool shengchanyewu excluded-ip-address 192.168.10.1 192.168.10.20 ip pool bangongyewu excluded-ip-address 192.168.11.1 192.168.11.30 interface GigabitEthernet 0/0/1 dhcp select global
LSW1
system-view sysnameLSW1 user-interface console 0 authentication-mode password set authentication password cipher admin vlan batch 10 20 30 vlan 10 description shengchanyewu vlan 20 description bangongyewu vlan 30 description wangguanyewu port-group trunk group-member g 0/0/1 to g0/0/3 port link-type trunk port trunk allow-pass vlan 10 20 30 interface Vlanif 1 IP address 192.168.1.2 255.255.255.252 interface Vlanif 10 IP address 192.168.10.254 255.255.255.0 interface Vlanif 20 IP address 192.168.11.254 255.255.255.0 interface Vlanif 30 IP address 192.168.12.254 255.255.255.0 dhcp enable interface vlanif 10 dhcp select relay dhcp relay server-ip 192.168.1.1 interface vlanif 20 dhcp select relay dhcp relay server-ip 192.168.1.1 interface vlanif 30 dhcp select relay dhcp relay server-ip 192.168.1.1
LSW2
system-view sysname LSW2 vlan 10 port-group vlan10 group-member e 0/0/11 to e0/0/15 port link-type access port default vlan 10 interface GigabitEthernet 0/0/1 port link-type trunk port trunk allow-pass vlan 10 20 30
LSW3
system-view sysname LSW3 vlan 20 port-group vlan20 group-member e 0/0/11 to e0/0/15 port link-type access port default vlan 20 interface GigabitEthernet 0/0/1 port link-type trunk port trunk allow-pass vlan 10 20 30
LSW4
system-view sysname LSW4 vlan 30 port-group vlan30 group-member e 0/0/11 to e0/0/15 port link-type access port default vlan 30 interface GigabitEthernet 0/0/1 port link-type trunk port trunk allow-pass vlan 10 20 30